Lucene search
+L

85 matches found

The Hacker News
The Hacker News
added 2020/04/20 10:58 a.m.7 views

COVID-Themed Lures Target SCADA Sectors With Data Stealing Malware

A new malware campaign has been found using coronavirus-themed lures to strike government and energy sectors in Azerbaijan with remote access trojans RAT capable of exfiltrating sensitive documents, keystrokes, passwords, and even images from the webcam. The targeted attacks employ Microsoft Word...

5.9AI score
Exploits0
Gitee
Gitee
added 2019/12/09 11:14 p.m.6 views

icsmaster

This repository, 'icsmaster', is an ICS/SCADA security resource collection. It contains various tools and scripts for identifying and exploiting vulnerabilities in industrial control systems. The repository includes a list of dorks search terms for finding vulnerable systems, as well as a...

7.1AI score
Exploits0
CNVD
CNVD
added 2019/07/10 12:0 a.m.8 views

Siemens TIA Administrator Authentication Vulnerability

Simatic WinCC TIA Portal is engineering software for configuring and programming Simatic panels, Simatic Industrial PCs and standard PC Winccruntime professional visualization software running WinCC Runtime Advanced or SCADA systems. An authentication vulnerability exists in Siemens TIA...

7.8CVSS7AI score0.00897EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2018/10/29 12:0 a.m.44 views

Modbus Slave PLC 7 Buffer Overflow

Exploit Title: Modbus Slave PLC 7 - '.msw' Buffer Overflow PoC Author: Kagan Capar Discovery Date: 2018-10-27 Software Link: https://www.modbustools.com/download/ModbusSlaveSetup32Bit.exe Vendor Homepage : https://www.modbustools.com Tested Version: 7 Tested on OS: Windows XP SP3 ENG other versio...

0.3AI score
Exploits0
0day.today
0day.today
added 2018/10/29 12:0 a.m.44 views

Modbus Slave PLC 7 - .msw Buffer Overflow Exploit

Exploit for windows platform in category local exploits Exploit Title: Modbus Slave PLC 7 - '.msw' Buffer Overflow PoC Author: Kağan Çapar Software Link: https://www.modbustools.com/download/ModbusSlaveSetup32Bit.exe Vendor Homepage : https://www.modbustools.com Tested Version: 7 Tested on OS:...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2018/10/29 12:0 a.m.43 views

Modbus Slave PLC 7 - '.msw' Buffer Overflow (PoC)

Exploit Title: Modbus Slave PLC 7 - '.msw' Buffer Overflow PoC Author: Kağan Çapar Discovery Date: 2018-10-27 Software Link: https://www.modbustools.com/download/ModbusSlaveSetup32Bit.exe Vendor Homepage : https://www.modbustools.com Tested Version: 7 Tested on OS: Windows XP SP3 ENG other versio...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/09/12 12:0 a.m.86 views

CirCarLife SCADA 4.3.0 - Credential Disclosure

CirCarLife SCADA 4.3.0 - Credential Disclosure Exploit Title: CirCarLife SCADA 4.3.0 - Credential Disclosure Date: 2018-09-10 Exploit Author: David Castro Vendor Homepage: https://circontrol.com/ Shodan Dork: Server: CirCarLife Server: PsiOcppApp Version: CirCarLife Scada all versions under 4.3.0...

5CVSS5.7AI score0.56829EPSS
Exploits10
ICS
ICS
added 2018/09/06 12:0 p.m.25 views

McAfee Night Dragon Report (Update A)

Overview McAfee has published a white paper titled “Global Energy Cyberattacks: Night Dragon,”McAfee, http://www.mcafee.com/us/resources/white-papers/wp-global-energy-cyberattacks-night-dragon.pdf, accessed February 10, 2011. which describes advanced persistent threat activity designed to obtain...

7.2AI score
Exploits0References17
ThreatPost
ThreatPost
added 2018/05/17 3:0 p.m.10 views

Podcast: The Evolution of Deception Technology

Deception technology is an emerging category of cyber defense that is particularly useful when it comes to IoT devices, SCADA systems and medical devices. Threatpost talks to Tony Cole, CTO of Attivo Networks, about how deception technology has evolved, the challenges behind and opportunities of...

1.2AI score
Exploits0References1
CNVD
CNVD
added 2017/02/10 12:0 a.m.4 views

Multiple SQL Injection Vulnerabilities in Ecava IntegraXor

Ecava IntegraXor is a set of Web-based tools for creating and running HMI interfaces for SCADA systems. Ecava IntegraXor suffers from multiple SQL injection vulnerabilities that stem from a failure to properly validate a SQL query before using user input. An attacker could use this vulnerability ...

9.8CVSS8AI score0.01645EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2016/09/30 12:23 p.m.21 views

ICS-CERT Report Grim Reminder of State of Critical Infrastructure Security

U.S. critical infrastructure got another reminder this week that it needs to do more to protect itself from cyber attacks with the release of an annual government report. The NCCIC/ICS-CERT FY 2015 Annual Vulnerability Coordination Report points out that nagging issues continue to plague industri...

0.3AI score
Exploits0References1
ICS
ICS
added 2016/08/02 12:0 a.m.74 views

Siemens SINEMA Server Privilege Escalation Vulnerability (Update A)

OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-16-215-02 Siemens SINEMA Server Privilege Escalation Vulnerability that was published August 2, 2016, on the NCCIC/ICS-CERT web site. --------- Begin Update A Part 1 of 2 -------- Security researcher rgod working...

7.8CVSS0.9AI score0.00475EPSS
Exploits0References21
ThreatPost
ThreatPost
added 2016/07/27 12:27 p.m.18 views

Attributing Advanced Attacks Remains Challenge For Researchers

Amid the connections being made between the Russian government and the attack on the Democratic National Committee DNC, researchers on Tuesday reminded us of the challenges security experts have in correctly attributing advanced attacks. In a wide-ranging Reddit AMA, members of Kaspersky Lab’s...

Exploits0References3
ThreatPost
ThreatPost
added 2016/07/21 7:0 a.m.22 views

IoT Insecurity: Top Connected Device Security Concerns

It’s a coin toss whether or not that Internet of Things device you depend on is secure. Those unacceptable 50/50 odds come from a survey by IOActive where technology professionals were asked about the security of connected devices from thermostats, security cameras to alarm systems. Those numbers...

6.4CVSS0.1AI score0.01728EPSS
Exploits0References4
FireEye
FireEye
added 2016/06/02 8:0 a.m.13 views

IRONGATE ICS Malware: Nothing to See Here...Masking Malicious Activity on SCADA Systems

In the latter half of 2015, the FireEye Labs Advanced Reverse Engineering FLARE team identified several versions of an ICS-focused malware crafted to manipulate a specific industrial process running within a simulated Siemens control system environment. We named this family of malware IRONGATE...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2016/03/24 3:15 p.m.13 views

Iranians Indicted Over DDoS Campaign on Banks, Dam Hack

The U.S. government on Thursday indicted seven hackers affiliated with the Iranian government for attacks it called “a frightening new frontier in cybercrime.” Accusing the men of carrying out a series of distributed denial of service DDoS attacks against 46 financial companies, the Department of...

0.6AI score
Exploits0References7
ICS
ICS
added 2016/02/13 7:0 a.m.41 views

Meteocontrol WEB'log Vulnerabilities (Update A)

OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-16-133-01 Meteocontrol WEB'log Vulnerabilities that was published May 12, 2016, on the NCCIC/ICS‑CERT web site. Independent researcher Karn Ganeshen has identified one authentication and two information exposure...

10CVSS10AI score0.6437EPSS
Exploits6References10
ThreatPost
ThreatPost
added 2016/02/09 5:36 a.m.11 views

Power Grid Honeypot Puts Face on Attacks

TENERIFE, Spain –The rhetoric around hacking the power grid would have you believe it’s a relatively mundane practice. Policymakers, intelligence agencies and vendors, for example, spread the word gleefully, leaning on scenarios such as state-sponsored hackers shutting off the lights in the dead ...

0.5AI score
Exploits0
FireEye
FireEye
added 2016/01/07 8:56 p.m.231 views

Sandworm Team and the Ukrainian Power Authority Attacks

Update 1.11.16 - SANS ICS Team Connects Dots Updating the blog entry to bring attention to the recent analysis published by Mike Assante from the SANS ICS team. "After analyzing the information that has been made available by affected power companies, researchers, and the media it is clear that...

9.3CVSS7.9AI score0.81628EPSS
Exploits22
FireEye
FireEye
added 2016/01/07 8:56 p.m.194 views

Sandworm Team and the Ukrainian Power Authority Attacks

Update 1.11.16 - SANS ICS Team Connects Dots Updating the blog entry to bring attention to the recent analysis published by Mike Assante from the SANS ICS team. "After analyzing the information that has been made available by affected power companies, researchers, and the media it is clear that...

9.3CVSS7.9AI score0.81628EPSS
Exploits22
Rows per page
Query Builder